Imagine finding out that you had left your front door unlocked for half a decade--and didn't know it. Sure, it's an exaggeration; but for Windows 98 users, a certain security hole has been lurking for that long. In fact, this newly discovered flaw affects all versions of Windows from the first edition of Windows 98 (as well as Windows NT) through Windows XP. Microsoft also discovered a separate flaw involving Windows Me PCs.
Why it took Microsoft five years to catch such a widespread problem is beyond me, especially given the company's ballyhooed "Secure Windows Initiative"--a program aimed at improving security measures in all its products.
The first hole involves the scripting engine found in all Windows flavors. A miscreant could decoy you with a booby-trapped HTML e-mail message, or lure you into clicking a contaminated link on a Web page, and exploit a weakness in the scripting engine. Once you click, you run the villain's little script, and--shazam!--you've just given the scoundrel all the capabilities that you have on your system.
Visit Microsoft's TechNet to grab the fix. Your PC is already protected from an e-mail attack exploiting this flaw if you use either Outlook Express 6 or Outlook 2002 in its default configuration, or if you use Outlook 98 or Outlook 2000 and have installed the Outlook E-mail Security Update.
Another option (albeit an extreme one): You could block potential attacks by disabling active scripting in IE--but then portions of legitimate Web sites that use scripting won't function correctly. To disable scripting within IE, select Tools, Internet Options, choose the Security tab, and select the Custom Level button. Scroll down to the settings for Active Scripting and for Scripting of Java Applets, and click the Disable radio buttons.
The second Windows hole, which affects Me's Help feature, could let a sneaky cracker take over your PC--in some cases by just sending you an HTML-formatted e-mail.
Most of the same caveats apply for this Windows Me problem as for the scripting bug. Though you can't prevent an attack simply by resetting IE's security settings, using Outlook Express 6 or Outlook 2002 with the default configurations will protect your PC. And if you use Outlook 98 or 2002 with the Outlook E-mail Security Update, you're in good shape too.
If you don't fall into either of these camps, however, your PC can be attacked through a tainted e-mail message. Better to be safe than insouciant; download the patch.
- Page 1 of 3
- Next »
Would you recommend this story? YES NO
-
A Potential Fix for the Outlook 'General Failure' Error
-
Help Solve the Outlook 'General Failure' E-Mail Error
-
Microsoft's Fix for Outlook's 'General Failure' Error for E-Mail Links
-
Make Outlook Automatically Spell-Check Your E-mail
-
Stop Gmail From Downloading Too Many Messages to Your E-Mail Client
-
Install a Windows Service Pack That Refuses to Install
-
IdeaPad U300s If there's a laptop that deserves the moniker "Ultrabook" it's the Lenovo IdeaPad U300s.
Buy now direct from Lenovo -
ThinkPad X220 Fast and light, with great input ergonomics and battery life, this powerhouse ultraportable is best-of-breed.
Buy now direct from Lenovo -
ThinkPad T420 Just about every IT person we know swears by the T series--for their clients and themselves.
Buy now direct from Lenovo
- This Mod Lets You Re-Create the Commodore 64's Processor in Minecraft This Minecraft mod lets you construct a computer that emulates the famed 6502 8-bit processor.
- Facebook Tests Timeline Redesign The new Timeline design condenses the biographical information at the top of the page.
- Five Things to Look Forward to in Linux Mint 13 'Maya' A new display manager and a dash of 'Cinnamon' will set this upcoming release of the popular free OS apart.
- Robofish Detects Sea Pollution and Protects Real Marine Life, Is a Freaking Robot Check out this robot, made to fish out (get it?) pollution in the ocean or ports. It also gives bloggers an excuse to make really bad puns.
- 12 Criteria for Selecting the Best ERP System Replacement An ERP system is your information backbone and reaches into all areas of your business and value chain. Replacing it can open unlimited business opportunities. This white paper explains the 12 criteria that allow you to identify and select the solution that will meet these expectations.
- Leveraging Social Computing Technologies for ERP Applications This white paper details how Web 2.0 technologies support business strategies by improving efficiency, productivity, and collaboration.
-
Should You Pay $99 to Have Microsoft Remove Bloatware from Your PC?
-
How to Decide When It's Time to Reformat and Reinstall Windows
-
How to Speed Up Your NAS With iSCSI
-
Windows 8 Security: What's New
-
Expect Windows 8 PCs to Be Pre-Loaded With Bloatware
-
U.S. Satisfaction With Microsoft Slips
-
Should I Turn Off Automatic Updates?
-
Windows 8 Roundup: Browser Makers Gripe; HP, Lenovo Sign On
-
Microsoft Pledges to Go Carbon Neutral in July
-
Windows 8 Upgrade Offer Might Not Be Free
-
Computing Fossils: Old Tech Holds on for Dear Life
-
Samsung Launches Low-end Windows Phone With 4-inch Display
Ad Choices